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DETAILED ACTION 

1. Claims 1-10, 12-28 are pending. 



Claim Objections 

2. The following objections have been made. Correction is recommended. 

• The numbering of claims has skipped claim 1 1, jumping from claim 10 to 12. 

• Claim 4 depends upon claim 9. As a matter of style, the Examiner recommends 
placing dependent claims numerically later than the claim or claims they depend 
upon. 

• The Examiner has read "establishing an new SSL connection" as "estabUshing a 
new SSL connection" as recited in claim 27. 

Admitted Prior Art 

3. Claims 1-3, 5-8, 10, 14-17, 19-26 are rejected over Secure Sockets Layer (SSL), 
disclosed in the admitted prior art as found in the specification, paragraphs 2-7. As 
known to those of ordinary skill in the art, SSL is a method in which a client requests a 
session and a connection from which data may be sent with cryptographic parameters 
negotiated between the client and server. SSL comprises three protocols: the handshake 
protocol, the Change Cipher Spec Protocol, and the Alert Protocol. During the 
handshake the client sends forth a list of encryption types representing encryption 
capabihties of the client. 

As Applicant has stated "First, there is a key exchange of "handshake" phase, in which 
the server and client attempt to agree upon an encryption suite to be used for data 
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transmission. After the key exchange or "handshake" is negotiated, a bulk encryption of 
data transmission phase is carried out in which the desired content is transmitted using 
the agreed-upon encryption suite. 

The claim elements appear to recite details that are inherent to the SSL 
architecture and protocol, v 3.1. 

Applicant has recited "the approaches described in this section are not prior art to the 
claims in this application and are not admitted to be prior art by inclusion in this section." 

The Examiner has interpreted Applicant's recitation to refer to solely to the approach as 
referred to in paragraph 0009. Applicant has used to the approach in paragraph 0008 to 
explain why major SSL content providers have been turning to dedicated SSL 
termination devices, and has indicated that such SSL termination devices are already on 
the market. Additionally, the Applicant has referred to the approach in paragraph 0006 of 
using server farms a past approach, as well as the secure sockets layer protocol of 
paragraph 0003. 

The fact that Applicant has stated the approaches in the background of the art are not 
prior art, does not thereby absolve the Applicant of disclosure of other methods made by 
others in the past. The Examiner regards the other embodiments Applicant has 
disclosed as that is was previously performed by others, as prior art, with exception to the 
approach described in paragraph 0009, which has no indication of being performed in the 
past. 
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Claim Rejections - 35 USC § 102 

4. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

5. Claims 1-3, 5-8, 10, 14-17, 19-26 are rejected under 35 U.S.C. 102(b) as being 
anticipated by "Cryptography and Network Security, Principles and Practice", Stallings, 
Chapter 14, "Web Security". 

In reference to claim 1 : 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method of providing data from a service to a client over a 
telecommunication network based on encryption capabilities of the client, the method 
comprising the computer-implemented steps of: 

• Receiving from the cUent a request for data and a list of encryption types 
representing encryption capabilities that are available at the client, where the 
request from the client is the client hello, and the list of encryption types is the 
cipher suite which is the list containing the combinations of cryptographic 
algorithms supported by the client, (pages 451-452) 

• Selecting a service that can provide the data to the client based on matching the 
Hst of encryption types received from the client to a mapping of encryption types 
to available services, where the selection of the service is performed in the 
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server_hello message and a ciphersuite is selected by the server from the list 
provided by the client, (pages 45 1-453) 
• Causing communication of the data from the selected service to the client, where 
the server_hello message is communicated to the client. (Figure 14.6) & (pages 
451-453) 

Li reference to claim 2: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method as recited in claim 1, ftirther comprising the step of 
establishing a secure connection with the client, and wherein the receiving step is carried 
out as part of the establishing step, where the receiving step of receiving from the client a 
request for data establishes a number of parameters to how the secure connection is to be 
instigated. ("Phase 1. Estabhsh Security Capabilities, page 451) 

In reference to claim 3: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method as recited in claim 1, fiirther comprising the step of 
establishing a secure connection with the client, and wherein the receiving step is carried 
out as part of the establishing step, wherein the secure connection is established using a 
security protocol selected from among the set consisting of SSL, PPTP, SSH, and IPSec, 
where the security protocol that is selected is SSL. 



In reference to claim 5: 
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"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method as recited in claim 1, further comprising the step of 
establishing a secure coimection with the client, and wherein the receiving step is carried 
out as part of the establishing step, and further comprising the step of disconnecting the 
secure connection and reestablishing the secure coimection using a cipher suite match, 
where the disconnection and the reestablishment of the connection is the Phase 2, Server 
Authentication and Key Exchange, and the disconnection is made by the server_done 
message which is always required, (pages 451-454) & (Figure 14.6) The re- 
establishment of the connection is made in Phase 3. 

In reference to claim 6: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" (pages 451-454) discloses a method as recited in claim 1, wherein the 
ordered mapping of encryption types to services is an ordered mapping of cipher suites to 
services, where the cipher suit is an ordered list of encryption types, and where these 
particular encryption types are cipher suites that are mapped to their respective 
encryption or hashing services(RSA, Fixed Diffie Helbnan, etc.) 

In reference to claim 7: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method as recited in claim 1, further comprising the steps of 
receiving a weight value for one or more of the encryption types and ordering the 
mapping of encryption types to services based on the received weight values, where the 
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weight value is the preference as set by the client, and the encryption types are ordered 
based on this value, (pages 452) 

In reference to claim 8: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" (pages 451-454) discloses a method as recited in claim 1, wherein the 
encryption type is a cipher suite match. 

In reference to claim 10: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method as recited in claim 1, wherein the step of causing 
communication further comprises the step of establishing a connection with a non- 
encrypted protocol for use in communicating a request to the selected service to cause 
communication of the data from the selected service to the client, where the cormection is 
the chent_hello and server_hello (pages 451-454) 

Claim 14 is substantially similar to claim 1 and is rejected for the same reasons, where 
the endpoint is the server, and the ordered list is the CipherSuite. 

Claim 15 is substantially similar to claim 3 and is rejected for the same reasons. 



In reference to claim 16: 
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"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses the step of establishing a secure connection further comprises 
the step of establishing the secure connection with the client and endpoint using a cipher 
suite match, where the estabUshing of the step is inherent to the client_hello, the "Phase 
1, Establish Security Capabilities" and a cipher suite match between the Client Cipher 
Suite and the Server election, (pages 451-453) 

Claim 17 is substantially similar to claim 5 and is rejected for the same reasons. 
Claim 19 is substantially similar to claim 7 and is rejected for the same reasons. 
Claim 20 is substantially similar to claim 8 and is rejected for the same reasons. 

Claim 21 is substantially similar to claim 1 and is rejected for the same reasons, where 
the endpoint is the server, and the ordered list of encryption types is the CipherSuite. 

Claims 23, 24 are substantially similar to claim 1 and are rejected for the same reasons. 
Claim 22, 25, and 26 are substantially similar to claim 1 and are rejected for the same 
reasons. 

Claim Rejections - 35 use § 103 
6. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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7. Claims 4, 9, 18, 27, 28 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over "Cryptography and Network Security, Principles and Practice", Stallings, Chapter 
14, "Web Security". 

8. Claims 12 and 13 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" and USPGPUB, 2003/0046532, Cast, "System and Method of 
Accelerating Cryptographically Secure Sessions" 

In reference to claim 9: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method as recited in claim 1, wherein the step of determining 
the service further comprises the steps of: 

• Determining an encryption type match by finding a first common encryption type 
in the list of encryption types and the mapping of encryption types to services; 
(pages 451-453) 

• Transmitting the encryption type match to the client; (pages 45 1 -453) 

• Selecting a service associated with the encryption type match, where the selection 
of service is the server's selection of the encryption type, (pages 451-453) 
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"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" fails to disclose: 

• Selecting a server farm based on the service; and 

• Selecting a particular server in the server farm to provide data to the client. 

The Examiner takes official notice that server farms were well known in the art at the 
time of invention. For Example, access to large corporate sites, or sites that handle heavy 
traffic cannot deal with the network and computational load with only a single server. 
Rather, a large set of servers, all operated by that one entity work together to handle the 
client load. For Example, google.com does not use a single server to handle all the traffic 
it encounters from use of its search engine. Rather this work is split among a set of 
servers associated and commonly owned. Each server within the server farm handles the 
load through a particular distribution method. Ultimately it is a single server that 
provides data to a client, although which particular server within the farm may change. 

It would have been obvious to one of ordinary skill in the art at the time of invention to 
select a server farm to deal with the large computational loads required by SSL and 
especially a large number of clients requiring SSL, while selecting a particular server 
within the server farm to provide data to the client in order to handle the computational 
and network burden that a server would not be able to single-handedly provide. 



In reference to claim 4: 
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"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method as recited in claim 9, further comprising the step of 
establishing a secure connection with the client, and wherein the receiving step is carried 
out as part of the estabhshing step, wherein the step of establishing the secure connection 
further comprises the step of establishing the secure coimection with the client using a 
cipher suite match, where the establishing of the step is inherent to the client_hello, the 
"Phase 1, Establish Security Capabihties" and a cipher suite match between the Client 
Cipher Suite and the Server election, (pages 45 1-453) 

Claim 12 is rejected for the same reasons as claim 13. 

In reference to claim 13: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method of providing data associated with a service to a client 
over a telecommunication network based on SSL encryption capabilities of the client, the 
method comprising the computer-implemented steps of: 

• Receiving from the client as part of an SSL handshake phase message, a request 
for data and a list of cipher suites that are available at the client, (pages 45 1-453) 

• Matching the cipher suite list received from the client to the mapping to result in 
identifying at least one cipher suite in common between the cipher suite list and 
the mapping, (pages 451-453) 
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"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" fails to disclose: 

• Creating and storing, at an SSL termination device, a mapping that associates 

cipher suites that are supported by the SSL termination device with services that 

are accessible through the SSL termination device. 

USPGPUB, 2003/0046532, Gast, "System and Method of Accelerating 
Cryptographically Secure Sessions" discloses: 

Creating and storing, at an SSL termination device, a mapping that associates cipher 
suites that are supported by the SSL termination device with services that are accessible 
through the SSL termination device. (Figure 3, Item 214) & (paragraphs 23 & 34) where 
the mapping of associated cipher suites is the list of cipher suites supported by the SSL 
termination device, each of those services accessible through the device. 

Gast, paragraph 23 discloses that SSL termination devices provide the ability to have 
intrusion detection systems monitor the encrypted data stream. Furthermore, it is known 
that using an SSL termination device would allow for higher loads, since there would be 
hardware dedicated to SSL processing. 

It would have been obvious to one of ordinary skill in the art at the time of invention to 
use the SSL termination device of Gast which includes the mapping of associated cipher 
suites in order to allow monitoring of the encrypted data stream or to reduce the 
computational burden through the use of dedicated hardware. 
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In reference to claim 18: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" fails to disclose a method as recited in claim 15, wherein the endpoint is 
a SSL termination device. 

The Examiner takes official notice that SSL termination devices were well known at the 
time of invention, already developed by several manufacturers, in some cases as 
dedicated boxes and or processors for SSL. 

Furthermore, the Applicant echoes this by disclosing in the specification that SSL 
termination devices were known in the art at the time of invention and developed by 
several companies. The Applicant also echoes the well known fact that SSL is a 
computationally expensive method. 

It would have been obvious to one of ordinary skill in the art at the time of invention to 
use an SSL termination device in order to better handle the computational loads of clients 
that use SSL connects. 

In reference to claim 27: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method of providing data from a service to a client based on 
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encryption capabilities of the client, the method comprising the computer-implemented 
steps of: 

• Receiving an ordered Ust of cipher suites that corresponds to cipher suites 
available to a client; (pages 451-453) 

• Establishing a new SSL connection (pages 451-453) 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" fails to disclose: 

• Establishing an SSL connection with an SSL termination module; 

• Transmitting to the SSL termination module a request for data and the ordered list 
of cipher suites; 

• Receiving from the SSL termination module a cipher suite match. 

The combination of claim 27 is rejected for the same reasons as previously set forth in 
claim 18. The actions of establishing, transmitting, and receiving, appear to be the 
identical actions that a regular server would provide in an SSL connection and session, 
the server's actions being replaced with an SSL termination device instead. 

In reference to claim 28: 

"Cryptography and Network Security, Principles and Practice", Stallings, Chapter 14, 
"Web Security" discloses a method of providing data from a service to a client based on 
encryption capabilities of the client, the method comprising the computer-implemented 
steps of: 
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• Receiving an ordered mapping of cipher suite names to services; (pages 45 1-453) 

• Receiving from the client a request for data and an ordered list of cipher suites; 

• Determining a cipher suite match by selecting a first conraion cipher suite in the 
ordered Hst of cipher suites and the ordered mappings of cipher suite names to 
services; (pages 451-453) 

• Transmitting the cipher suite match to the cUent; (pages 45 1-453) 

• Selecting the service associated with the client suite match; (pages 45 1-453) 

"Cryptography and Network Security, Principles and Practice", StaUings, Chapter 14, 
"Web Security" fails to disclose: 

• Selecting a server farm based on the service; 

• Selecting a particular server in the server farm to provide the data to the client and 
transmitting the data to the client. 

The following combination in claim 28 however is rejected for the same motivations and 
reasons as set forth previously in claim 9. 

Conclusion 

9. The following art not relied upon is made of record: 

• US 20020103663 A1 discloses an SSL termination device as a node in a 
network. 
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10. Any inquiry concerning this communication from the examiner should be directed 
to Thomas M Ho whose telephone number is (571)272-3835. The examiner can normally 
be reached on M-F from 9:30 AM - 6:00 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 

supervisor, Gregory A. Morse can be reached on (571)272-3838. 

The Examiner may also be reached through email through Thomas.Ho6@uspto. gov 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (571)272-2100. 

General Information/Receptionist Telephone: 571-272-2100 Fax: 703-872-9306 
Customer Service Representative Telephone: 571-272-2100 Fax: 703-872-9306 



TMH 



September 15^ 2005 




GREGORY MORSE 
SUPERVISORY PATENT EXAMINER 
TECHNOLOGY CEMTER 2100 



